CVE-2025-24046: Use after free in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

high7.8CVSS 3.1

AVLACLPRLUINSUCHIHAH

Use after free in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

Affected

41 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	windows_10_1507	< 10.0.10240.20947	10.0.10240.20947
microsoft	windows_10_1607	< 10.0.14393.7876	10.0.14393.7876
microsoft	windows_10_1809	< 10.0.17763.7009	10.0.17763.7009
microsoft	windows_10_21h2	< 10.0.19044.5608	10.0.19044.5608
microsoft	windows_10_22h2	< 10.0.19045.5608	10.0.19045.5608
microsoft	windows_10_version_1507	>= 10.0.10240.0 < 10.0.10240.20947	10.0.10240.20947
microsoft	windows_10_version_1607	>= 10.0.14393.0 < 10.0.14393.7876	10.0.14393.7876
microsoft	windows_10_version_1809	>= 10.0.17763.0 < 10.0.17763.7009	10.0.17763.7009
microsoft	windows_10_version_21h2	>= 10.0.19044.0 < 10.0.19044.5608	10.0.19044.5608
microsoft	windows_10_version_22h2	>= 10.0.19045.0 < 10.0.19045.5608	10.0.19045.5608
microsoft	windows_11_22h2	< 10.0.22621.5039	10.0.22621.5039
microsoft	windows_11_24h2	< 10.0.26100.3403	10.0.26100.3403
microsoft	windows_11_24h2	< 10.0.26100.3476	10.0.26100.3476
microsoft	windows_11_version_22h2	>= 10.0.22621.0 < 10.0.22621.5039	10.0.22621.5039
microsoft	windows_11_version_22h3	>= 10.0.22631.0 < 10.0.22631.5039	10.0.22631.5039
microsoft	windows_11_version_23h2	>= 10.0.22631.0 < 10.0.22631.5039	10.0.22631.5039
microsoft	windows_11_version_24h2	>= 10.0.26100.0 < 10.0.26100.3476	10.0.26100.3476
microsoft	windows_server_2016	< 10.0.14393.7876	10.0.14393.7876
microsoft	windows_server_2016	>= 10.0.14393.0 < 10.0.14393.7876	10.0.14393.7876
microsoft	windows_server_2019	< 10.0.17763.7009	10.0.17763.7009
microsoft	windows_server_2019	>= 10.0.17763.0 < 10.0.17763.7009	10.0.17763.7009
microsoft	windows_server_2022	< 10.0.20348.3270	10.0.20348.3270
microsoft	windows_server_2022	< 10.0.20348.3328	10.0.20348.3328
microsoft	windows_server_2022	>= 10.0.20348.0 < 10.0.20348.3328	10.0.20348.3328
microsoft	windows_server_2022_23h2	< 10.0.25398.1486	10.0.25398.1486